Changeset 14070 for trunk/tests/phpunit/testcases/groups/test-controller.php

Timestamp:

11/03/2024 06:19:06 PM (5 months ago)

Author:

espellcaste

Message:

A user is no longer de-authenticated when making REST API requests.

We are introducing a new BP_LoggedIn_User class to fetch data about a BuddyPress logged-in user. This new addition fixes an issue where a user could be de-authenticated when making REST API requests.

Props dcavins, DJPaul, johnjamesjacoby, and imath.

Closes ​https://github.com/buddypress/buddypress/pull/395
See #9229 and #9145
Fixes #7658

File:

• trunk/tests/phpunit/testcases/groups/test-controller.php (modified) (41 diffs)

trunk/tests/phpunit/testcases/groups/test-controller.php

@@ -38 +38 @@
      */
     public function test_get_items() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $this->bp::factory()->group->create_many( 3 );
@@ -81 +81 @@
         $this->bp::add_user_to_group( $u, $g2 );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', $this->endpoint_url );
@@ -124 +124 @@
         $this->bp::add_user_to_group( $u, $g2 );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', $this->endpoint_url );
@@ -160 +160 @@
 
         $this->bp::add_user_to_group( $u, $g );
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', $this->endpoint_url );
@@ -201 +201 @@
         $this->bp::add_user_to_group( $u, $g6 );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', $this->endpoint_url );
@@ -271 +271 @@
      */
     public function test_get_items_edit_context_users_private_data() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $this->bp::factory()->group->create();
@@ -302 +302 @@
         $u2 = $this->bp::factory()->user->create();
 
-        $this->bp::set_current_user( $u1 );
+        wp_set_current_user( $u1 );
 
         $now = time();
@@ -347 +347 @@
      */
     public function test_get_items_with_group_types() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         bp_groups_register_group_type( 'foo' );
@@ -383 +383 @@
     public function test_get_item() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $group = $this->endpoint->get_group_object( $this->group_id );
@@ -434 +434 @@
      */
     public function test_get_item_invalid_group_id() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request  = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', REST_TESTS_IMPOSSIBLY_HIGH_NUMBER ) );
@@ -456 +456 @@
 
         $this->bp::add_user_to_group( $u, $group->id );
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', $group->id ) );
@@ -482 +482 @@
         $group = $this->endpoint->get_group_object( $g );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'GET', sprintf( $this->endpoint_url . '/%d', $group->id ) );
@@ -497 +497 @@
     public function test_get_item_with_avatar() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $group = $this->endpoint->get_group_object( $this->group_id );
@@ -517 +517 @@
     public function test_get_item_without_avatar() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $group = $this->endpoint->get_group_object( $this->group_id );
@@ -539 +539 @@
     public function test_get_item_extra() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $group = $this->endpoint->get_group_object( $this->group_id );
@@ -561 +561 @@
      */
     public function test_render_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $g = $this->bp::factory()->group->create(
@@ -583 +583 @@
      */
     public function test_create_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'POST', $this->endpoint_url );
@@ -600 +600 @@
      */
     public function test_rest_create_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'POST', $this->endpoint_url );
@@ -619 +619 @@
         bp_groups_register_group_type( 'foo' );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'POST', $this->endpoint_url );
@@ -636 +636 @@
      */
     public function test_create_item_with_no_name() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'POST', $this->endpoint_url );
@@ -686 +686 @@
         $this->assertEquals( $this->group_id, $group->id );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $group->id ) );
@@ -714 +714 @@
         bp_groups_set_group_type( $this->group_id, 'bar' );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -735 +735 @@
         bp_groups_set_group_type( $this->group_id, 'bar' );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -757 +757 @@
         bp_groups_set_group_type( $this->group_id, 'bar' );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -774 +774 @@
      */
     public function test_update_item_invalid_id() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request  = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', REST_TESTS_IMPOSSIBLY_HIGH_NUMBER ) );
@@ -804 +804 @@
 
         $u2 = static::factory()->user->create();
-        $this->bp::set_current_user( $u2 );
+        wp_set_current_user( $u2 );
 
         $group = $this->endpoint->get_group_object( $a );
@@ -823 +823 @@
      */
     public function test_site_admins_can_update_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -851 +851 @@
         $this->bp::add_user_to_group( $u, $this->group_id, array( 'is_admin' => true ) );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -879 +879 @@
         $this->bp::add_user_to_group( $u, $this->group_id, array( 'is_mod' => true ) );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -897 +897 @@
     public function test_update_item_invalid_status() {
         $group = $this->endpoint->get_group_object( $this->group_id );
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'PUT', sprintf( $this->endpoint_url . '/%d', $group->id ) );
@@ -914 +914 @@
      */
     public function test_delete_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -930 +930 @@
      */
     public function test_delete_item_invalid_id() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request  = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', REST_TESTS_IMPOSSIBLY_HIGH_NUMBER ) );
@@ -952 +952 @@
      */
     public function test_delete_item_without_permission() {
-        $this->bp::set_current_user( static::factory()->user->create() );
+        wp_set_current_user( static::factory()->user->create() );
 
         $request  = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -969 +969 @@
         $this->bp::add_user_to_group( $u, $this->group_id, array( 'is_mod' => true ) );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request  = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -981 +981 @@
      */
     public function test_site_admins_can_delete_group() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $request = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -1002 +1002 @@
         $this->bp::add_user_to_group( $u, $this->group_id, array( 'is_admin' => true ) );
 
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $request = new WP_REST_Request( 'DELETE', sprintf( $this->endpoint_url . '/%d', $this->group_id ) );
@@ -1019 +1019 @@
     public function test_get_current_user_groups() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $groups = array();
@@ -1046 +1046 @@
     public function test_get_current_user_groups_max_one() {
         $u = static::factory()->user->create();
-        $this->bp::set_current_user( $u );
+        wp_set_current_user( $u );
 
         $groups = array();
@@ -1084 +1084 @@
 
     public function test_prepare_item() {
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $group = $this->endpoint->get_group_object( $this->group_id );
@@ -1261 +1261 @@
         );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
         $expected = 'bar_value';
 
@@ -1307 +1307 @@
         );
 
-        $this->bp::set_current_user( $this->user );
+        wp_set_current_user( $this->user );
 
         $expected = 'foo_value';